WingNews logo WingNews
top | item 43406684

(no title)

marcus0x62 | 11 months ago

Perhaps I should have been clearer, but especially compared to the rest of the enterprise tech market, security is unusually fragmented. There is no Microsoft or Cisco of the security market in the way those companies dominate the desktop operating system and core networking markets, respectively.

Analysts sometimes refer to the enterprise networking market as "Cisco and the Seven Dwarves". Nobody has ever said that about Symantec (prior to the Broadcom acquisition) or Palo Alto Networks.

It is often the case that in a new security product category, the products are so different, it is hard to collect them together in a single category with a straight face. Example: next generation AV circa 2015-2016. AV was a well-worn product category. All of the legacy products did basically the same thing. More or less at the same time, a bunch of new products came to market that all claimed the mantle of "next generation AV:"

* Bit9 did process whitelisting, later adding Carbon Black for endpoint forensics

* Fire Eye had a proto-EDR solution

* Cylance did ML-based malware detection

* Palo Alto Networks had an exploit-mitigation focused agent that they bolted ML-based malware detection onto.

The industry slowly converged on EDR as the sort-of successor to endpoint AV budgets.

A few years later, the cloud security space was the same fragmented mess. Some were what we now know as CSPM, some were glorified DLP solutions, some container security solutions, etc.

discuss

order

FreakLegion|11 months ago

Microsoft is the Microsoft of the enterprise security market, more or less. They completely dominate email, largely dominate identity, have a plurality if not a majority on endpoint, but don't compete in network.

> The industry slowly converged on EDR as the sort-of successor to endpoint AV budgets.

This was a dedicated effort by CrowdStrike working with analysts back in 2017-2018. EDR capabilities themselves, interestingly, grew out of forensics companies like Guidance Software. HBGary and Mandiant were the early players. FireEye killed Mandiant's EDR off, but HBGary's lives on to some extent today, two or three acquisitions later, at GoSecure.

marcusb|11 months ago

> Microsoft is the Microsoft of the enterprise security market, more or less. They completely dominate email, largely dominate identity, have a plurality if not a majority on endpoint, but don't compete in network.

The most recent figures I’ve seen are that Microsoft has around 25% of the endpoint market[0], which is a plurality because the market is so fragmented. Proofpoint claims around 24% of the email security market[1].

The only security market you can say they “dominate” is identity, if you ignore the MFA market. AD is, at least, almost everywhere.

> This was a dedicated effort by CrowdStrike working with analysts back in 2017-2018.

That’s one interpretation of events. It’s also completely orthogonal to what I wrote.

0 - https://www.microsoft.com/en-us/security/blog/2024/08/21/mic...

1 - https://www.proofpoint.com/us/blog/email-and-cloud-threats/p...